The mailing list for listmasters using Sympa

[Soji Ikeda <address@concealed>]

Hi,

2018/02/16 0:22、Hanno van den Boogaard <address@concealed>のメール:

Hello Listmasters,

 

Iam new to sympa and I try to authenticate against our windows active directory using the ldap paragraph in the auth.conf without success.

The sympa error log shows:

 

Feb 15 15:35:52 DECGN-MLM01 wwsympa[1288]: err main::#1608 > main::do_renewpasswd#4265 > main::is_ldap_user#3988 > Sympa::Database::connect#154 > (eval)#154 > Sympa::DatabaseDriver::LDAP::_connect#162 Failed to bind to LDAP server ldap://xyz.de.abcd.com:389: (49) 80090308: LdapErr: DSID-0C090400, comment: AcceptSecurityContext error, data 52e, v1db1

 

My auth conf:

 

ldap

      host                   xyz.de.abcd.com:389

      timeout                10

      bind_dn                         cn=ReaderUser,ou=Users,dc=de,dc=abcd,dc=com

      bind_password                   xxxyyyy

      suffix                dc=de,dc=abcd,dc=com

      get_dn_by_uid_filter        (uid=[sender])

      get_dn_by_email_filter        (|(mail=[sender])(mailalternateaddress=[sender]))

      email_attribute            mail

      scope                sub

 

user_table

        regexp                 .*

 

bind password und dn should be ok.

Are there special configs or sample configs for using windows active directory and auth conf ?

Result code 49 indicates “Invalid credential”. Bind DN or bind password seems incorrect.

I don’t know the details but, with Active Directory LDAP profile, bind DN can be in the form “user@domain” or “domain¥user”.

Regards,

— Soji

Local authentication is working.

 

Kind Regards,

Hanno

 

 

Hanno van den Boogaard

System Administration

address@concealed